WordPress Theme vulnerabilities | WPScan

0-9
a
b
c
d
e
f
g
h
i
j
k
l
m
n
o
p
q
r
s
t
u
v
w
x
y
z

Slug

yaaburnee-themes

Published

2015-03-04

Title

Ya'aburnee 1.0.7 - Privilage Escalation

Slug

Published

2025-07-08

Title

Yogi <= 2.9.0 - Authenticated (Subscriber+) PHP Object Injection

Slug

Published

2023-07-26

Title

Your Journey theme <= 1.9.8 - Reflected Cross-Site Scripting via Prototype Pollution

Slug

Published

2025-05-21

Title

Yozi <= 2.0.52 - Unauthenticated Local File Inclusion

Slug

Published

2023-07-18

Title

Freemius SDK < 2.5.10 - Reflected Cross-Site Scripting

Slug

Published

2024-02-27

Title

Yuki < 1.3.14 - Missing Authorization to Authenticated (Subscriber+) Theme Setting Reset

Slug

Published

2024-02-27

Title

Yuki < 1.3.15 - Cross-Site Request Forgery to Theme Setting Reset

Slug

Published

2014-08-01

Title

yvora - Full Path Disclosure

Slug

Published

2014-08-01

Title

yvora - Arbitrary File Upload